$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/3F3E2A10CC6411EDA7970484C4F9AE02.roa File: 3F3E2A10CC6411EDA7970484C4F9AE02.roa (raw, json) Hash identifier: zTbUbYoqbVGTCB7vV/9Oi8BgtnQrV/KuVcCelWmi5sI= Subject key identifier: 79:D9:4A:2A:EA:A3:F4:04:E9:E8:C0:2E:6B:01:6D:67:6B:7D:D5:17 Certificate issuer: /CN=A91D1200/serialNumber=38C0B1C58D00DE3F73AD5B5887D4249BDEE7BBA2 Certificate serial: 0158 Authority key identifier: 38:C0:B1:C5:8D:00:DE:3F:73:AD:5B:58:87:D4:24:9B:DE:E7:BB:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OMCxxY0A3j9zrVtYh9Qkm97nu6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/3F3E2A10CC6411EDA7970484C4F9AE02.roa Signing time: Thu 05 Dec 2024 03:17:33 +0000 ROA not before: Thu 05 Dec 2024 03:17:33 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134673 IP address blocks: 202.27.212.0/24 maxlen: 24 202.27.247.0/24 maxlen: 24 202.49.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/OMCxxY0A3j9zrVtYh9Qkm97nu6I.crl rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/OMCxxY0A3j9zrVtYh9Qkm97nu6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OMCxxY0A3j9zrVtYh9Qkm97nu6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1200 Validity Not Before: Dec 5 03:17:33 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67511b4d-97af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d0:b3:74:9e:78:e2:76:42:ee:0a:25:a4:9c: 0e:26:46:83:02:d8:ee:0c:cd:f7:7a:34:89:7a:14: 96:f8:a1:e4:b2:dc:99:06:17:f4:d1:0c:84:30:8d: 8b:3b:3a:aa:ca:fe:f0:ca:2c:36:42:9d:c4:72:e3: a1:9c:bc:ac:06:1a:17:ca:7b:bc:e4:f0:a1:60:a4: 88:ed:f1:9e:bb:f4:4e:15:7d:eb:e0:00:da:ef:05: 28:4d:4c:89:67:78:63:41:fe:73:41:7a:38:2c:a5: ae:a9:58:53:f6:f4:05:22:88:8b:63:ea:fc:0a:a8: f3:d5:be:c3:b1:25:ef:a1:f9:9f:f9:81:41:a3:c3: 4a:33:f0:a6:95:46:e4:60:7b:89:a5:66:7d:53:37: b4:43:31:61:34:f2:fb:ea:7e:87:94:c8:f2:ab:54: 60:23:e4:7f:60:ff:2f:6a:a1:86:05:7a:9c:d1:1b: 25:89:8c:d6:e2:22:c0:42:70:23:7c:a2:59:98:ce: e5:d0:a8:88:82:5d:43:3f:bd:f1:62:4c:ec:40:05: c6:a6:8c:c1:0c:67:15:d1:04:e8:87:2a:4b:3d:73: 16:9a:09:a8:a0:da:70:ed:d8:53:9c:9d:c6:b4:33: 1d:a1:99:6b:ce:83:f4:71:a1:a3:79:11:b8:13:e8: 74:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D9:4A:2A:EA:A3:F4:04:E9:E8:C0:2E:6B:01:6D:67:6B:7D:D5:17 X509v3 Authority Key Identifier: keyid:38:C0:B1:C5:8D:00:DE:3F:73:AD:5B:58:87:D4:24:9B:DE:E7:BB:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/OMCxxY0A3j9zrVtYh9Qkm97nu6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OMCxxY0A3j9zrVtYh9Qkm97nu6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1200/F5A952E0CC0311EDA97ACA5DC4F9AE02/3F3E2A10CC6411EDA7970484C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.27.212.0/24 202.27.247.0/24 202.49.183.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:22:81:c1:a8:a8:cf:b0:a2:47:40:68:6a:27:fe:e0:32:c4: d8:fc:dd:22:92:7d:1f:1f:cb:81:ce:cb:a0:51:d6:49:06:da: 33:01:9d:f2:b7:35:1a:a4:23:35:38:be:78:d1:38:7c:37:f8: 25:38:d8:90:e3:16:9d:44:18:2e:ee:fc:ed:d3:61:2f:c6:ba: 37:2a:0a:70:b0:0e:34:0e:93:54:1d:22:46:6b:3f:77:3c:12: 13:18:80:ea:c2:23:29:9c:9a:c7:5f:df:6b:f1:16:0b:df:f7: 55:3c:4f:44:e6:c5:f4:e5:e3:9f:af:19:5f:48:4c:6d:2e:f2: 82:2a:5a:a3:34:a3:ba:45:ae:85:2b:b7:90:17:60:84:e6:d7: 2f:d8:de:4b:2c:cf:98:0d:eb:0d:55:db:db:41:66:62:60:ba: 39:cf:4b:94:65:16:67:e8:6e:1c:07:da:5d:22:7a:aa:80:17: 61:af:0e:ca:53:6b:ae:bd:1f:5c:90:76:28:d4:ab:df:c8:10: 39:f4:34:2e:57:bb:35:6d:d5:8e:21:fe:ab:88:39:db:0f:f1: 7c:c5:33:38:dc:b8:09:fe:96:9f:10:d8:a6:38:cb:f4:63:69: 8d:f6:00:f9:d8:2b:fa:4f:7b:49:58:17:e6:dc:1b:30:2b:be: 32:bf:52:c4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMDAxMTAvBgNVBAUTKDM4QzBCMUM1OEQwMERFM0Y3M0FENUI1ODg3RDQyNDlC REVFN0JCQTIwHhcNMjQxMjA1MDMxNzMzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUxMWI0ZC05N2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdCzdJ544nZC7golpJwOJkaDAtjuDM33ejSJehSW+KHkstyZBhf00QyEMI2L Ozqqyv7wyiw2Qp3EcuOhnLysBhoXynu85PChYKSI7fGeu/ROFX3r4ADa7wUoTUyJ Z3hjQf5zQXo4LKWuqVhT9vQFIoiLY+r8Cqjz1b7DsSXvofmf+YFBo8NKM/CmlUbk YHuJpWZ9Uze0QzFhNPL76n6HlMjyq1RgI+R/YP8vaqGGBXqc0RsliYzW4iLAQnAj fKJZmM7l0KiIgl1DP73xYkzsQAXGpozBDGcV0QTohypLPXMWmgmooNpw7dhTnJ3G tDMdoZlrzoP0caGjeRG4E+h0LwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHnZSirq o/QE6ejALmsBbWdrfdUXMB8GA1UdIwQYMBaAFDjAscWNAN4/c61bWIfUJJve57ui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIwMC9GNUE5NTJFMEND MDMxMUVEQTk3QUNBNURDNEY5QUUwMi9PTUN4eFkwQTNqOXpyVnRZaDlRa205N251 NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09NQ3h4WTBBM2o5enJWdFloOVFrbTk3bnU2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyMDAvRjVBOTUyRTBDQzAzMTFFREE5N0FDQTVEQzRGOUFFMDIvM0YzRTJBMTBD QzY0MTFFREE3OTcwNDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKG9QDBADKG/cDBADKMbcwDQYJKoZIhvcNAQELBQADggEB AE4igcGoqM+wokdAaGon/uAyxNj83SKSfR8fy4HOy6BR1kkG2jMBnfK3NRqkIzU4 vnjROHw3+CU42JDjFp1EGC7u/O3TYS/GujcqCnCwDjQOk1QdIkZrP3c8EhMYgOrC Iymcmsdf32vxFgvf91U8T0TmxfTl45+vGV9ITG0u8oIqWqM0o7pFroUrt5AXYITm 1y/Y3kssz5gN6w1V29tBZmJgujnPS5RlFmfobhwH2l0ieqqAF2GvDspTa669H1yQ dijUq9/IEDn0NC5XuzVt1Y4h/quIOdsP8XzFMzjcuAn+lp8Q2KY4y/RjaY32APnY K/pPe0lYF+bcGzArvjK/UsQ= -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:23 2025 by rpki-client